Old Chinese Hack Tool Used for New Tricks

May 20, 2009

This week’s installment of what’s-old-is-new-again in the world of malware comes from one of the many groups making and distributing phishing Trojans in China. Earlier this year, someone discovered a hacktool called ZXArps, and began distributing it in earnest as a payload from another malicious downloader.

Unlike most malware we see these days, ZXArps (which dates back to 2006, and was discovered by the English-speaking security community the following year) isn’t designed to perform a single task. It’s more like a Swiss Army knife, giving its users a great deal of control over not only the computer on which it’s running, but the immediate network environment in which that computer sits.

Live vid titles leak from Twitter's new app for the Bong! crowd Twitter's Meerkat-strangling live streaming app Periscope has had its first privacy SNAFU, leaking the titles (but not the content) of videos meant for private circulation only.…

Memo seen by managers, but not top dog Even before Edward Snowden spilled the beans on the National Security Agency's(NSA's) extensive surveillance programs, high-level US bureaucrats were considering spiking the program.…

Make sure you use only original spares … Cisco has worked through data centre and switch products that may have been vulnerable to the Row Hammer vulnerability, and decided there's nothing with the bridge brand on the front that's subject to the bug.…

Code repository warns of 'evolving' attacks With the GitHub distributed denial-of-service (DDoS) attack nearing its fifth day of bombardment, the code-sharing upstart said it is holding up well under fire.…

Dealers' funbux ended up in wallets of g-men, says US DoJ The US Department of Justice has accused two federal agents of stealing more than a million dollars in Bitcoins during the Silk Road investigation.…

Firefox and Chrome wave red flags at ISP Virgin Media has failed to upgrade weak encryption software that it uses for sensitive parts of the telco's website, despite complaints from customers who claim to have repeatedly flagged up security concerns to the firm.…